alperenugurlu

1 exploit Active since Jul 2024
CVE-2024-3596 NOMISEC CRITICAL SCANNER
FreeRADIUS < 3.0.27 - RADIUS Response Forgery via MD5 Chosen-Prefix Collision
RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature.
7 stars
CVSS 9.0